¿Cómo eliminar los rezagos del antivirus AVIRA?

Hola @Esteban_Cardenas:

Ademas de drivers de Avira activos, también procederemos a eliminar varios de MacAfee para evitar que estos te den problemas también y muchaaa basura.

Sigue estos pasos:

1.- Muy Importante >>> Realizar una copia de Seguridad de su Registro.

  • Descarga DelFix en el escritorio de Windows.
  • Clic Derecho, “Ejecutar como Administrador”.
  • En la ventana principal, marca solamente la casilla “Create Registry Backup”.
  • Clic en Run.

Al terminar se abrirá un reporte llamado DelFix.txt, guárdelo por si fuera necesario y cierre la herramienta…

2.- Desactiva Temporalmente tu antivirus.

3.- Abre un nuevo archivo Notepad y copia y pega este contenido:


Start
CloseProcesses:
CreateRestorePoint:
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
C:\Program Files\Common Files\McAfee
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
HKLM\...\Policies\Explorer: [NoActiveDesktop] C:\Windows\SysWOW64\1 [0 2017-04-29] ()
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] C:\Windows\SysWOW64\1 [0 2017-04-29] ()
HKU\S-1-5-21-425742559-3532017336-187542989-1001\...\MountPoints2: {332490d8-aa6a-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001\...\MountPoints2: {33249fef-aa6a-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001\...\MountPoints2: {44885646-c20b-11e8-b943-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001\...\MountPoints2: {d157db3d-a215-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977\...\MountPoints2: {332490d8-aa6a-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977\...\MountPoints2: {33249fef-aa6a-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977\...\MountPoints2: {44885646-c20b-11e8-b943-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977\...\MountPoints2: {d157db3d-a215-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030\...\MountPoints2: {332490d8-aa6a-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030\...\MountPoints2: {33249fef-aa6a-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030\...\MountPoints2: {44885646-c20b-11e8-b943-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030\...\MountPoints2: {d157db3d-a215-11e8-b942-ccb0da353ad8} - "F:\HiSuiteDownLoader.exe" 
GroupPolicy: Restriction ? <==== ATTENTION
Tcpip\Parameters: [DhcpNameServer] 190.157.8.33 190.157.8.1
Tcpip\..\Interfaces\{1786339f-d71c-448f-9a92-9565bb62d23f}: [DhcpNameServer] 190.157.8.33 190.157.8.1
Tcpip\..\Interfaces\{726d753f-cbd0-4be9-9152-47b3304cc512}: [DhcpNameServer] 190.157.8.33 190.157.8.1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131384702764191888&GUID=1A9D675D-5B11-4A91-88FB-15C95BA03A2B
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131384702764227764&GUID=1A9D675D-5B11-4A91-88FB-15C95BA03A2B
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-425742559-3532017336-187542989-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131384702764218620&GUID=1A9D675D-5B11-4A91-88FB-15C95BA03A2B
HKU\S-1-5-21-425742559-3532017336-187542989-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131384702764218620&GUID=1A9D675D-5B11-4A91-88FB-15C95BA03A2B
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131384702764218620&GUID=1A9D675D-5B11-4A91-88FB-15C95BA03A2B
HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
SearchScopes: HKU\S-1-5-21-425742559-3532017336-187542989-1001 -> DefaultScope {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = 
SearchScopes: HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977 -> DefaultScope {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = 
SearchScopes: HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030 -> DefaultScope {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = 
CHR Profile: C:\Users\Esteban Cárdenas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2019-02-18] <==== ATTENTION
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-425742559-3532017336-187542989-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hdkdmoacnkphoadmfidlhfdobieblphn] - C:\Program Files (x86)\EagleGet\addon\eagleget_newtab.crx [2017-04-16]
CHR HKU\S-1-5-21-425742559-3532017336-187542989-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-03-02]
CHR HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hdkdmoacnkphoadmfidlhfdobieblphn] - C:\Program Files (x86)\EagleGet\addon\eagleget_newtab.crx [2017-04-16]
CHR HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02192019235137977\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-03-02]
CHR HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hdkdmoacnkphoadmfidlhfdobieblphn] - C:\Program Files (x86)\EagleGet\addon\eagleget_newtab.crx [2017-04-16]
CHR HKU\S-1-5-21-425742559-3532017336-187542989-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-02202019084707030\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-03-02]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [hdkdmoacnkphoadmfidlhfdobieblphn] - C:\Program Files (x86)\EagleGet\addon\eagleget_newtab.crx [2017-04-16]
CHR HKLM-x32\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\[email protected] [2017-03-02]
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [242704 2016-09-08] (McAfee, Inc. -> McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [384016 2016-09-08] (McAfee, Inc. -> McAfee, Inc.)
S3 mfevtp; C:\windows\system32\mfevtps.exe [331280 2016-09-08] (McAfee, Inc. -> McAfee, Inc.)
C:\windows\system32\mfevtps.exe
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-06-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
C:\WINDOWS\System32\DRIVERS\avdevprot.sys
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-06-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
C:\WINDOWS\System32\Drivers\avusbflt.sys
S3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [88120 2016-09-09] (McAfee, Inc. -> McAfee, Inc.)
C:\WINDOWS\System32\drivers\cfwids.sys
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [477752 2016-09-09] (McAfee, Inc. -> McAfee, Inc.)
C:\WINDOWS\System32\drivers\mfeaack.sys
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [364088 2016-09-09] (McAfee, Inc. -> McAfee, Inc.)
C:\WINDOWS\System32\drivers\mfeavfk.sys
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [85656 2016-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> McAfee, Inc.)
C:\WINDOWS\System32\drivers\mfeelamk.sys
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [512056 2016-09-09] (McAfee, Inc. -> McAfee, Inc.)
C:\WINDOWS\System32\drivers\mfefirek.sys
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [884792 2016-09-09] (McAfee, Inc. -> McAfee, Inc.)
C:\WINDOWS\System32\drivers\mfehidk.sys
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [252984 2016-09-09] (McAfee, Inc. -> McAfee, Inc.)
C:\WINDOWS\System32\drivers\mfewfpk.sys
2019-02-19 00:11 - 2017-04-03 02:56 - 002975136 _____ (Avira Operations GmbH & Co. KG) C:\Users\Esteban Cárdenas\Desktop\avira_registry_cleaner_en.exe
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} =>  -> No File
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> No File
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> No File
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} =>  -> No File
Task: {0281EE93-93A0-441B-AC90-E5588034606B} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
FirewallRules: [{599FC873-7A83-41C8-83EF-589593531BC4}] => (Allow) C:\Program Files\CyberLink\PowerDirector14\PDR10.EXE No File
FirewallRules: [{ECAB360C-7D41-482A-BAEF-78F03FD22563}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe No File
FirewallRules: [{95BFA925-6EB6-4AC3-BF77-81EF176D9E6D}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe No File
FirewallRules: [{4FDA7895-2C60-4BC4-B645-36319C561E60}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe No File
FirewallRules: [{84C9FE5F-AECB-43B1-894E-8A98948FD1CD}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe No File
FirewallRules: [{E739C17F-1E65-4221-8EB4-0710E3744666}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe No File
FirewallRules: [{183420A3-C69C-4BE9-9B0A-D098D347296F}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe No File

CMD: ipconfig /flushdns
CMD: ipconfig /renew
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
RemoveProxy:
EmptyTemp:
Hosts:
END
  • Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.

Nota: Es necesario que el ejecutable Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no la herramienta no trabajara.

  • Ejecutas Frst.exe.
  • Presionas el botón Fix y aguardas a que termine.
  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
  • Lo pegas en tu próxima respuesta.

Salu2.